ci2 starts bisection 2026-01-03 08:13:40.661777676 +0000 UTC m=+3264232.838900732
bisecting fixing commit since cd2e103d57e5615f9bb027d772f93b9efd567224
building syzkaller on 3d2f584ddab119da50e8a8d26765aa98d3b33c02
ensuring issue is reproducible on original commit cd2e103d57e5615f9bb027d772f93b9efd567224

testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 971a5e841a796222e21650094e2232fdcca40ac1c146bc18388ccee9e9a8b519
all runs: crashed: INFO: task hung in do_renameat2
representative crash: INFO: task hung in do_renameat2, types: [HANG]
check whether we can drop unnecessary instrumentation
disabling configs for [memleak ubsan bug_or_warning kasan locking atomic_sleep], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 0bf1f9803444eecc60611dcad390c33e87dda86af9ba21b27a99faff600edfc0
all runs: crashed: INFO: task hung in do_renameat2
representative crash: INFO: task hung in do_renameat2, types: [HANG]
the bug reproduces without the instrumentation
disabling configs for [memleak ubsan bug_or_warning kasan locking atomic_sleep], they are not needed
kconfig minimization: base=4109 full=8352 leaves diff=2146
split chunks (needed=false): <2146>
split chunk #0 of len 2146 into 5 parts
testing without sub-chunk 1/5
disabling configs for [ubsan bug_or_warning kasan locking atomic_sleep memleak], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 90fb17fada85fcb5c97903d185e0f0e79599524f6f65bbea7687431d5aea57f1
all runs: crashed: INFO: task hung in do_renameat2
representative crash: INFO: task hung in do_renameat2, types: [HANG]
the chunk can be dropped
testing without sub-chunk 2/5
disabling configs for [atomic_sleep memleak ubsan bug_or_warning kasan locking], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 3faf45b60d45b98a0afad97114be593f0aeda1b542d2aaf9915c9e9f8c55eeec
all runs: crashed: INFO: task hung in do_renameat2
representative crash: INFO: task hung in do_renameat2, types: [HANG]
the chunk can be dropped
testing without sub-chunk 3/5
disabling configs for [atomic_sleep memleak ubsan bug_or_warning kasan locking], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: f9b9f3ca696a8a82251c0ea66e9e2a409d9c029e9e95b55604c4eabcad9befc4
all runs: crashed: INFO: task hung in do_renameat2
representative crash: INFO: task hung in do_renameat2, types: [HANG]
the chunk can be dropped
testing without sub-chunk 4/5
disabling configs for [memleak ubsan bug_or_warning kasan locking atomic_sleep], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 1ce7afb6925404d72904493cf54a2500cd86f134a1a5c9db7b8b5b3e883a658c
all runs: crashed: INFO: rcu detected stall in corrupted
representative crash: INFO: rcu detected stall in corrupted, types: [HANG]
the chunk can be dropped
testing without sub-chunk 5/5
disabling configs for [memleak ubsan bug_or_warning kasan locking atomic_sleep], they are not needed
testing commit cd2e103d57e5615f9bb027d772f93b9efd567224 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: fc87ff9b45a750405ccab04b1d2a990426d326cd9f360534c0a398ec656d8a73
all runs: crashed: INFO: rcu detected stall in corrupted
representative crash: INFO: rcu detected stall in corrupted, types: [HANG]
the chunk can be dropped
disabling configs for [locking atomic_sleep memleak ubsan bug_or_warning kasan], they are not needed
testing current HEAD 805f9a061372164d43ddef771d7cd63e3ba6d845
testing commit 805f9a061372164d43ddef771d7cd63e3ba6d845 gcc
compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
kernel signature: 764b83b8aef21d50965d686e3fb402ff08d85373d9eb4956132c291c6c8cce73
all runs: crashed: INFO: rcu detected stall in corrupted
representative crash: INFO: rcu detected stall in corrupted, types: [HANG]
crash still not fixed/happens on the oldest tested release
revisions tested: 8, total time: 1h40m34.633064908s (build: 44m11.181073703s, test: 47m13.257039282s)
crash still not fixed or there were kernel test errors
commit msg: Merge tag 'perf-tools-fixes-for-v6.19-2026-01-02' of git://git.kernel.org/pub/scm/linux/kernel/git/perf/perf-tools
crash: INFO: rcu detected stall in corrupted
rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	(detected by 1, t=10002 jiffies, g=3133, q=46 ncpus=2)
rcu: All QSes seen, last rcu_preempt kthread activity 10003 (4294955202-4294945199), jiffies_till_next_fqs=1, root ->qsmask 0x0
rcu: rcu_preempt kthread starved for 10004 jiffies! g3133 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:14304 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x925/0xdf0 kernel/sched/core.c:6863
 __schedule_loop kernel/sched/core.c:6945 [inline]
 schedule+0xac/0x140 kernel/sched/core.c:6960
 schedule_timeout+0xe2/0x160 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x19e/0x670 kernel/rcu/tree.c:2083
 rcu_gp_kthread+0x1c/0x150 kernel/rcu/tree.c:2285
 kthread+0x203/0x230 kernel/kthread.c:463
 ret_from_fork+0xf2/0x230 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 3305 Comm: syz.4.17 Not tainted syzkaller #0 PREEMPT(none) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:debug_spin_lock_before kernel/locking/spinlock_debug.c:88 [inline]
RIP: 0010:do_raw_spin_lock+0x23/0xf0 kernel/locking/spinlock_debug.c:115
Code: 90 90 90 90 90 90 90 0f 1f 40 d6 41 56 53 8b 47 04 3d ad 4e ad de 75 48 48 8b 47 10 65 4c 8b 34 25 08 90 20 83 4c 39 f0 74 59 <8b> 47 08 65 8b 0d 07 71 ed 01 39 c8 74 6e b9 01 00 00 00 31 c0 f0
RSP: 0018:ffffc90001ae3970 EFLAGS: 00000202
RAX: ffffffffffffffff RBX: ffff88811d2f3600 RCX: 0000000000000001
RDX: 1fa74ec4dae6a722 RSI: ffffffff8255a36b RDI: ffff888112bfae78
RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000358
R10: 0000000000000000 R11: ffffffff8166b200 R12: ffffc90001ae3a20
R13: ffff888114239d20 R14: ffff8881056a1b80 R15: ffff888112bfafe8
FS:  00007fb95608f6c0(0000) GS:ffff8882b4b0b000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 0000000105290000 CR4: 00000000003506f0
Call Trace:
 <TASK>
 spin_lock include/linux/spinlock.h:351 [inline]
 ext4_do_update_inode fs/ext4/inode.c:5597 [inline]
 ext4_mark_iloc_dirty+0x7a/0x600 fs/ext4/inode.c:6267
 __ext4_mark_inode_dirty+0x186/0x210 fs/ext4/inode.c:6473
 ext4_dirty_inode+0x5f/0x80 fs/ext4/inode.c:6502
 __mark_inode_dirty+0xf4/0x4a0 fs/fs-writeback.c:2587
 mark_inode_dirty include/linux/fs.h:2195 [inline]
 dquot_alloc_space include/linux/quotaops.h:319 [inline]
 dquot_alloc_block include/linux/quotaops.h:336 [inline]
 ext4_xattr_block_set+0x56f/0xd20 fs/ext4/xattr.c:2057
 ext4_xattr_set_handle+0x50c/0x800 fs/ext4/xattr.c:2456
 ext4_initxattrs+0x38/0x60 fs/ext4/xattr_security.c:44
 security_inode_init_security+0x274/0x2e0 security/security.c:1344
 __ext4_new_inode+0x10dd/0x1270 fs/ext4/ialloc.c:1324
 ext4_create+0xb8/0x1b0 fs/ext4/namei.c:2820
 vfs_create+0x126/0x140 fs/namei.c:4132
 do_mknodat+0x1cd/0x320 fs/namei.c:5039
 __do_sys_mknodat fs/namei.c:5071 [inline]
 __se_sys_mknodat fs/namei.c:5068 [inline]
 __x64_sys_mknodat+0x30/0x40 fs/namei.c:5068
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x85/0x2e0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fb95661e969
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb95608f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103
RAX: ffffffffffffffda RBX: 00007fb956845fa0 RCX: 00007fb95661e969
RDX: 0000000000000400 RSI: 0000200000000180 RDI: 0000000000000004
RBP: 00007fb9566a0ab1 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000103 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007fb956845fa0 R15: 00007ffd5bd80438
 </TASK>